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168 and ( virus adj definition and command$4 and restor$5) 
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L24 and rename 
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L22 and read 
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LI 9 and virus and delete and rename 
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LI 9 and virus 
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LI 7 and recovery 
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LI 7 and recovery 
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L13 and windows adj 98 
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LI 3 and wsock$5 
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LI 3 and wsock32 
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436 


□ 


L7 


VIRUS SAME DATA ADJ FILE 
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81 Security: Methods for the prevention, detection and removal of software security 



vulnerabilities 

Jay-Evan J. Tevis, John A. Hamilton 

April 2004 Proceedings of the 42nd annual Southeast regional conference 

Publisher: ACM Press 

Full text available: ^ pdf(424.09 KB) Additional Information: full citation , abstract , references , index terms 

Over the past decade, the need to build secure software has become a dominant goal in 
software development. Consequently, software researchers and practitioners have 
identified ways that malicious users can exploit software and how developers can fix the 
vulnerabilities. They have also built a variety of source code security checking software 
applications to partially automate the task of performing a security analysis of a program. 
Although great advances have been made in this area, the core p ... 



□ 



Keywords: functional programming, static code analysis 



82 Emerging technologies for homeland security: Cyber defense: art to science 
O. Sami Saydjari 

March 2004 Communications of the ACM, volume 47 issue 3 
Publisher: ACM Press 

Full text available: 1|j| pdf(108.20 KB) Additional Information: full citation , abstract , references , index terms . 
|5| html(28.44 KB) review 

Seeking the knowledge and means to more methodically detect, defend against, and 
better understand attacks on networked computer resources. 




83 A basic security plan for a generic organization 
Bhagyavati, Glenn Hicks 

October 2003 Journal of Computing Sciences in Colleges, volume 19 issue i 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^| pdf(40.79 KB) Additional Information: full citation , abstract , references , index terms 

Different organizations have plans in place to implement security in their computers and 
networks. In this paper, we examine the pros and cons of implementing a generic security 
plan on wired networks. The work presented here stems from an Independent Study 
course taken by an undergraduate student in the spring 2003 semester. It is hoped that 
this paper will provide new ideas for educators to direct student research in this important 
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subject as Independent Study or Directed Research courses. We f ... 

84 Intrusion detection: Countering code-injection attacks with instruction-set I I 

^ randomization 

^ Gaurav S. Kc, Angelos D. Keromytis, Vassilis Prevelakis 

October 2003 Proceedings of the 10th ACM conference on Computer and 
communications security 

Publisher: ACM Press 

p ii , , i ui « J*/* oc txov Additional Information: full citation , abstract , references , citings , index 

Full text available: T53pdf(146.35 KB) ' a -' 

1 terms 

We describe a new, general approach for safeguarding systems against any type of code- 
injection attack. We apply Kerckhoffs principle, by creating process-specific randomized 
instruction sets (e.g., machine instructions) of the system executing potentially 
vulnerable software. An attacker who does not know the key to the randomization 
algorithm will inject code that is invalid for that randomized processor, causing a runtime 
exception. To determine the difficulty of integrating su ... 

Keywords: buffer overflows, emulators, interpreters 



85 Safely executing untrusted code: Model-carrying code: a practical approach for safe I I 
execution of untrusted applications 

R. Sekar, V.N. Venkatakrishnan, Samik Basu, Sandeep Bhatkar, Daniel C. DuVarney 
October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 

principles 
Publisher: ACM Press 

Full text available: 1 Bpdff(301.30 KB) Additional Information: full citation , abstract, references , citings, index 
^ terms 

This paper presents a new approach called model-carrying code (MCC) for safe execution 
of untrusted code. At the heart of MCC is the idea that untrusted code comes equipped 
with a concise high-level model of its security-relevant behavior. This model helps bridge 
the gap between high-level security policies and low-level binary code, thereby enabling 
analyses which would otherwise be impractical. For instance, users can use a fully 
automated verification procedure to determine if the code ... 

Keywords: mobile code security, policy enforcement, sand-boxing, security policies 




86 Mi gration: Luna: a flexible Java protection system I I 
Chris Hawblitzel, Thorsten von Eicken 

December 2002 ACM SIGOPS Operating Systems Review, volume 36 issue si 
Publisher: ACM Press 

Full text available: ^ pdf(1.39 MB) Additional Information: full citation , abstract , references 

Extensible Java systems face a difficult trade-off between sharing and protection. On one 
hand, Java's ability to run different protection domains in a single virtual machine enables 
domains to share data easily and communicate without address space switches. On the 
other hand, unrestricted sharing blurs the boundaries between protection domains, 
making it difficult to terminate domains and enforce restrictions on resource usage. 
Existing solutions to these problems restrict sharing in an ad-hoc ... 

87 Session 9: traffic analysis: Code-Red: a case study on the spread and victims of an I I 
internet worm 

David Moore, Colleen Shannon, k daffy 
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November 2002 Proceedings of the 2nd ACM SIGCOMM Workshop on Internet 
measurment 

Publisher: ACM Press 

f- ii . . .... ^* .„< AA Additional Information: full citation , abstract , references , citings , index 

Full text available: TOpdf(1.11 MB) 

terms 

On July 19, 2001, more than 359,000 computers connected to the Internet were infected 
with the Code-Red (CRv2) worm in less than 14 hours. The cost of this epidemic, 
including subsequent strains of Code-Red, is estimated to be in excess of $2.6 billion. 
Despite the global damage caused by this attack, there have been few serious attempts 
to characterize the spread of the worm, partly due to the challenge of collecting global 
information about worms. Using a technique that enables global detectio ... 

Keywords: Code-Red, Code-Redl, CodeRedl, CodeRedll, backscatter, epidemiology, 
security, virus, worm 



88 Type-Safe linking with recursive DLLs and shared libraries I I 

^ Dominic Duggan 

November 2002 ACM Transactions on Programming Languages and Systems 

(TOPLAS), Volume 24 Issue 6 
Publisher: ACM Press 

Full text available* IS pdf(658 62 KB) Additional Information: full citation , abstract , references , citings , index 
• LAj h : terms 

Component-based programming is an increasingly prevalent theme in software 
development, motivating the need for expressive and safe module interconnection 
languages. Dynamic linking is an important requirement for module interconnection 
languages, as exemplified by dynamic link libraries (DLLs) and class loaders in operating 
systems and Java, respectively. A semantics is given for a type-safe module 
interconnection language that supports shared libraries and dynamic linking, as well as 
circular ... 

Keywords: Dynamic Linking, Module Interconnection Languages, Recursive Modules, 
Shared Libraries 



89 Security of runtime extensible virtual environments 

Ernesto J. Salles, James Bret Michael, Michael Capps, Don McGregor, Andrzej Kapolka 
September 2002 Proceedings of the 4th international conference on Collaborative 

virtual environments 
Publisher: ACM Press 

Full text available:^ pdf(1 28.78 KB) Additional Information: full citation , abstract , references , index terms 

Distributed, real-time virtual environment (VE) architectures have traditionally been 
driven by quality of service (QOS) considerations, with little or no concern paid to security 
issues. With recent advancements in functionality, computing power and network 
bandwidth it has become practical to use VEs in sensitive areas such as product 
development with proprietary information and visualization of classified information. 
Consequently, previously ignored aspects of security need to be made a prim ... 

Keywords: collaborative environment, computer security, information assurance, 
runtime extensible virtual environment, security, taxonomy, virtual environment, virtual 
reality 




90 Security for Web Applications and P2P: Abstracting application-level web security I I 
David Scott, Richard Sharp 



http://portal.acm.org/resu^ 7/2/2006 



Results (page 5): " restoring computer system" + "malicious code" Page 4 of 6 



♦ 



May 2002 Proceedings of the 11th international conference on World Wide Web 

Publisher: ACM Press 

r- ii* ^ Ll a jx/ooTc ^ Additional Information: full citation , abstract , references , citings , index 

Full text available: Tju pdf(287.51 KB) 

terms 

Application-level web security refers to vulnerabilities inherent in the code of a web- 
application itself (irrespective of the technologies in which it is implemented or the 
security of the web-server/back-end database on which it is built). In the last few months 
application-level vulnerabilities have been exploited with serious consequences: hackers 
have tricked e-commerce sites into shipping goods for no charge, user-names and 
passwords have been harvested and condential information (such as ... 

Keywords: application-Level web security, component-based design, security policy 
description language 



91 Security service level agreements: quantifiable security for the enterprise? 
Ronda R. Henning 

September 1999 Proceedings of the 1999 workshop on New security paradigms 

Publisher: ACM Press 

Full text available: ^ pdf(662.02 KB) Additional Information: full citation , references , citings , index terms 




92 



From system F to typed assembly languag e I I 

Greg Morrisett, David Walker, Karl Crary, Neal Glew 

May 1999 ACM Transactions on Programming Languages and Systems (TOPLAS), 

Volume 21 Issue 3 
Publisher: ACM Press 

Full text available* -fifl pdf(483 91 KB) Adc, 'tional Information: full citation , abstract , references , citings , index 

~ terms 

We motivate the design of typed assembly language (TAL) and present a type-preserving 
translation from Systemn F to TAL. The typed assembly language we pressent is based 
on a conventional RISC assembly language, but its static type sytem provides support for 
enforcing high-level language abstratctions, such as closures, tuples, and user-defined 
abstract data types. The type system ensures that well-typed programs cannot violatet 
these abstractions! In addition, the typing constructs admit ... 

Keywords: certified code, closure conversion, secure extensible systems, type-directed 
compilation, typed assembly language, typed intermediate languages 



93 Resource bound certification I I 

Karl Crary, Stephnie Weirich 

January 2000 Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on 
Principles of programming languages 

Publisher: ACM Press 

Full text available* fi3 odfd 71 MB) Additional Information: full citation , abstract , references , citings , index 

terms 

Various code certification systems allow the certification and static verification of 
important safety properties such as memory and control-flow safety. These systems are 
valuable tools for verifying that untrusted and potentially malicious code is safe before 
execution. However, one important safety property that is not usually included is that 
programs adhere to specific bounds on resource consumption, such as running time. We 
present a decidable type system capable of specify ... 
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Inoculating software for survivability I I 

Anup K. Ghosh, Jeffrey M. Voas 

July 1999 Communications of the ACM, volume 42 issue 7 
Publisher: ACM Press 

Full text available: ffl pdf(214.10 KB) , ... . . , 

}S [_x Additional Information: full citation , references , citings , index terms 

|<y] ntml(37.50 KB) 



95 "Mainstreaming" automated information systems security engineering (a case study I I 
in security run amok) 
James W. Coyne, Norman C. Kluksdahl 

November 1994 Proceedings of the 2nd ACM Conference on Computer and 
communications security 

Publisher: ACM Press 

Full text available: ^pdf(750.61 KB) Additional Information: full citation , abstract , references , index terms 

Since mid-1992, the National Aeronautics and Space Administration (NASA) Mission 
Control Center (MCC) in Houston has pursued commonality and consolidation of facilities 
and equipment to reduce the implementation costs associated with the modernization of 
the control center, as well as the on-going operations and sustaining costs. In December 
of 1993, a management team, comprised almost entirely of individuals with manned 
spaceflight operations experience, was given the charter of completing ... 




96 Workshop on architectural support for security and anti-virus (WASSA): Energy - 
security tradeoff in a secure cache architecture against buffer overflow attacks 
Koji Inoue 

March 2005 ACM SIGARCH Computer Architecture News, volume 33 issue l 
Publisher: ACM Press 

Full text available: ^ pdf(391.20 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we propose a cache architecture, called SCache, to detect buffer-overflow 
attacks at run time. Furthermore, the energy-security efficiency of SCache is discussed. 
SCache generates replica cache lines on each return-address store, and compares the 
original value loaded from the memory stack to the replica one on the corresponding 
return-address load. The number and the placement policy of the replica line strongly 
affect both energy and vulnerability. In our evaluation, it i ... 




97 Academic papers: Information security curriculum creation: a case study I I 

Bradley Bogolea, Kay Wijekumar 

October 2004 Proceedings of the 1st annual conference on Information security 
curriculum development 

Publisher: ACM Press 

Full text available: ^ pdf(89.42 KB) Additional Information: full citation , abstract , references , index terms 

Information Security is a critical part of the technology infrastructure. A survey of 
undergraduate degree programs in Computer Science, Information Technology, 
Management Information Science, and others show a lack of emphasis on security issues 
in their curriculum. The purpose of this paper is to present a case study on our approach 
to creating an undergraduate curriculum that will enhance existing degree programs in 
Computer Science and Information Technology to provide an increased awareness ... 

Keywords: assessment, curriculum, information assurance, information security, 
information technology, infosec, security, surveys 
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98 Trustworthy systems: Symmetric behavior-based trust: a new paradigm for internet | | 
computing 

Vivek Haldar, Michael Franz 

September 2004 Proceedings of the 2004 workshop on New security paradigms 

Publisher: ACM Press 

Full text available: ^gjj pdf(76.86 KB) Additional Information: full citation, abstract , references 

Current models of Internet Computing are highly asymmetric - a host protects itself from 
malicious mobile Java programs, but there is no way to get assurances about the 
behavior of a program running remotely. The asymmetry stems from a behavior-based 
security model: hosts ensure conformance to a given security policy by restricting the 
actions of programs. In contrast, security models that are based on cryptography 
(including code signing) are inherently symmetric by design but do not match the ... 




99 Databases: SQL DOM: compile time checking of dynamic SQL statements I I 

Russell A. McClure, Ingolf H. Kruger 

May 2005 Proceedings of the 27th international conference on Software engineering 
Publisher: ACM Press 

Full text available: pdf(353.48 KB) Additional Information: full citation , abstract , references , index terms 

Most object oriented applications that involve persistent data interact with a relational 
database. The most common interaction mechanism is a call level interface (CLI) such as 
ODBC or JDBC While there are many advantages to using a CLI — expressive power and 
performance being two of the most key — there are also drawbacks. Applications 
communicate through a CLI by constructing strings that contain SQL statements. These 
SQL statements are only checked for correctness at runtime, tend to be f ... 

Keywords: SQL, SQL DOM, SQL injection, SQL strings, dynamic SQL, impedance 
mismatch 




100 Opinion: Electronic voting systems: the good, the bad, and the stupid I I 

Ay Barbara Simons 

>^ October 2004 Queue, volume 2 issue 7 

Publisher: ACM Press 
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